summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: feb4e21)
raw | patch | inline | side by side (parent: feb4e21)
| author | Thomas Munro <tmunro@postgresql.org> | |
| Wed, 13 Sep 2023 02:32:24 +0000 (14:32 +1200) | ||
| committer | Thomas Munro <tmunro@postgresql.org> | |
| Wed, 13 Sep 2023 02:52:34 +0000 (14:52 +1200) |
If an out-of-memory error was thrown at an unfortunate time,
ensure_record_cache_typmod_slot_exists() could leak memory and leave
behind a global state that produced an infinite loop on the next call.
Fix by merging RecordCacheArray and RecordIdentifierArray into a single
array. With only one allocation or re-allocation, there is no
intermediate state.
Back-patch to all supported releases.
Reported-by: "James Pang (chaolpan)" <chaolpan@cisco.com>
Reviewed-by: Michael Paquier <michael@paquier.xyz>
Discussion: https://postgr.es/m/PH0PR11MB519113E738814BDDA702EDADD6EFA%40PH0PR11MB5191.namprd11.prod.outlook.com
ensure_record_cache_typmod_slot_exists() could leak memory and leave
behind a global state that produced an infinite loop on the next call.
Fix by merging RecordCacheArray and RecordIdentifierArray into a single
array. With only one allocation or re-allocation, there is no
intermediate state.
Back-patch to all supported releases.
Reported-by: "James Pang (chaolpan)" <chaolpan@cisco.com>
Reviewed-by: Michael Paquier <michael@paquier.xyz>
Discussion: https://postgr.es/m/PH0PR11MB519113E738814BDDA702EDADD6EFA%40PH0PR11MB5191.namprd11.prod.outlook.com
| src/backend/utils/cache/typcache.c | patch | blob | blame | history | |
| src/tools/pgindent/typedefs.list | patch | blob | blame | history |
index 99222159031255edb68168ea09df71b1213783b7..4b7b99ceb3ba15361984ab9ed769d5e813aea856 100644 (file)
/* hashtable for recognizing registered record types */
static HTAB *RecordCacheHash = NULL;
-/* arrays of info about registered record types, indexed by assigned typmod */
-static TupleDesc *RecordCacheArray = NULL;
-static uint64 *RecordIdentifierArray = NULL;
-static int32 RecordCacheArrayLen = 0; /* allocated length of above arrays */
+typedef struct RecordCacheArrayEntry
+{
+ uint64 id;
+ TupleDesc tupdesc;
+} RecordCacheArrayEntry;
+
+/* array of info about registered record types, indexed by assigned typmod */
+static RecordCacheArrayEntry *RecordCacheArray = NULL;
+static int32 RecordCacheArrayLen = 0; /* allocated length of above array */
static int32 NextRecordTypmod = 0; /* number of entries used */
/*
{
if (RecordCacheArray == NULL)
{
- RecordCacheArray = (TupleDesc *)
- MemoryContextAllocZero(CacheMemoryContext, 64 * sizeof(TupleDesc));
- RecordIdentifierArray = (uint64 *)
- MemoryContextAllocZero(CacheMemoryContext, 64 * sizeof(uint64));
+ RecordCacheArray = (RecordCacheArrayEntry *)
+ MemoryContextAllocZero(CacheMemoryContext, 64 * sizeof(RecordCacheArrayEntry));
RecordCacheArrayLen = 64;
}
while (typmod >= newlen)
newlen *= 2;
- RecordCacheArray = (TupleDesc *) repalloc(RecordCacheArray,
- newlen * sizeof(TupleDesc));
+ RecordCacheArray = (RecordCacheArrayEntry *)
+ repalloc(RecordCacheArray,
+ newlen * sizeof(RecordCacheArrayEntry));
memset(RecordCacheArray + RecordCacheArrayLen, 0,
- (newlen - RecordCacheArrayLen) * sizeof(TupleDesc));
- RecordIdentifierArray = (uint64 *) repalloc(RecordIdentifierArray,
- newlen * sizeof(uint64));
- memset(RecordIdentifierArray + RecordCacheArrayLen, 0,
- (newlen - RecordCacheArrayLen) * sizeof(uint64));
+ (newlen - RecordCacheArrayLen) * sizeof(RecordCacheArrayEntry));
RecordCacheArrayLen = newlen;
}
}
{
/* It is already in our local cache? */
if (typmod < RecordCacheArrayLen &&
- RecordCacheArray[typmod] != NULL)
- return RecordCacheArray[typmod];
+ RecordCacheArray[typmod].tupdesc != NULL)
+ return RecordCacheArray[typmod].tupdesc;
/* Are we attached to a shared record typmod registry? */
if (CurrentSession->shared_typmod_registry != NULL)
* Our local array can now point directly to the TupleDesc
* in shared memory, which is non-reference-counted.
*/
- RecordCacheArray[typmod] = tupdesc;
+ RecordCacheArray[typmod].tupdesc = tupdesc;
Assert(tupdesc->tdrefcount == -1);
/*
* We don't share tupdesc identifiers across processes, so
* assign one locally.
*/
- RecordIdentifierArray[typmod] = ++tupledesc_id_counter;
+ RecordCacheArray[typmod].id = ++tupledesc_id_counter;
dshash_release_lock(CurrentSession->shared_typmod_table,
entry);
- return RecordCacheArray[typmod];
+ return RecordCacheArray[typmod].tupdesc;
}
}
}
ensure_record_cache_typmod_slot_exists(entDesc->tdtypmod);
}
- RecordCacheArray[entDesc->tdtypmod] = entDesc;
+ RecordCacheArray[entDesc->tdtypmod].tupdesc = entDesc;
/* Assign a unique tupdesc identifier, too. */
- RecordIdentifierArray[entDesc->tdtypmod] = ++tupledesc_id_counter;
+ RecordCacheArray[entDesc->tdtypmod].id = ++tupledesc_id_counter;
/* Fully initialized; create the hash table entry */
recentry = (RecordCacheEntry *) hash_search(RecordCacheHash,
* It's a transient record type, so look in our record-type table.
*/
if (typmod >= 0 && typmod < RecordCacheArrayLen &&
- RecordCacheArray[typmod] != NULL)
+ RecordCacheArray[typmod].tupdesc != NULL)
{
- Assert(RecordIdentifierArray[typmod] != 0);
- return RecordIdentifierArray[typmod];
+ Assert(RecordCacheArray[typmod].id != 0);
+ return RecordCacheArray[typmod].id;
}
/* For anonymous or unrecognized record type, generate a new ID */
TupleDesc tupdesc;
bool found;
- tupdesc = RecordCacheArray[typmod];
+ tupdesc = RecordCacheArray[typmod].tupdesc;
if (tupdesc == NULL)
continue;
index e11a650b1c3b76cdb2c8905ec132a34dae52928d..46c46cc2539646c722fb56bbf1135cbcc69da709 100644 (file)
ReadFunc
ReassignOwnedStmt
RecheckForeignScan_function
+RecordCacheArrayEntry
RecordCacheEntry
RecordCompareData
RecordIOData